Opinions are like a%$*oles, everyone has them and they're usually full of &amp;*it! Argue with our Opinion writers or add your own. Who knows... a great opinion post could land you a featured opinion article!

hello everybody,I just lose my job because i introduced the ECCouncil qualification form to pass the CEH certi sent it by the hierarchical way and three days later they came and took my pc for analysis they found the metasploit installer, a rar of cain, and the exam prep guide that i just finished to download to sent them back to my storage mail

i won't stop studying security for this because it's more of a passion for me

Sorry to hear about the loss of your job but based on your email it sounds like a reasonably large firm and so probably has policies and procedures in place covering personal/private use of your workstation and more. Any good policy will cover what can or cannot be installed on that machine too.

Today with the media getting all hyped up about the latest compromise, most companies do not take kindly to finding those sorts of tools on a company computer. Their liability, depending on the industry and country, can be huge regardless of your intentions they are required to show due diligence and take action.

Then again if there are no policies in place and the country laws are non specific you might have grounds to dispute your dismissal.

they said it was policythey were very nice anyway i had the possibility to explain myself,i told them i am studying security they also had a copy of the ceh form i introduced. they said that they have to dismiss me due to the policy and i can understand, there is topics (even in here) that discuss about some risk like that

anyway thanks for all your reply i feel a little bit less alone in the freaky part of computing loll

never had that feeling? speaking in the desert while giving a simple answer about computing?

it happens to me a lot these days specially when i speak about some project of mine with ex colleagues or nerdy friends

I understand your pain dean, I happen to work for a rather security paranoid (and rightfully so) organization with pages and pages of rules regarding computer use and installed programs. All installed programs have to be OKed from my boss, her boss.. then Wash DC. First thing I did, before I even hinted at installing anything, was to talk with my bosses boss, and with my boss and explain what programs I would like to install and their purpose. I also explained my desire to gain the CEH and to work on security learning in general as a future focus of my career.

After going through all the hoops, I have basically been given free reign to do as I like within proper bounds. If I am going to do any scans I of course have to let the proper levels of boss-hood know, and get consent etc. You just have to remember to cover your own 4ss first and foremost. If you happen to scan something, and find a vulnerability.. you don't say a thing until you have gotten written or emailed permission to scan. Heck, I had to get rid of Putty the other day, because a new policy regarding that specific program was implemented after a compromised machine was found using port 22 to connect out. Not all policies make perfect sense, but remember your first priority is keeping a paycheck comming.

It's a sad thing hearing you got canned over it, but I think it is a good reminder to the rest of us to watch out for our organization's policies as well.